$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft File: 7LSEAFYEaoqTIoTqXx4EagIzHOk.mft (raw, json) Hash identifier: UeGzEw8zQ6C4chojCnAU9h6SVx7P0OA/Z2KUeKRinOQ= Subject key identifier: 96:30:A6:69:A0:11:8E:30:66:F5:7C:2D:D0:52:56:94:FF:68:13:A6 Authority key identifier: EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 Certificate issuer: /CN=A9149E50/serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft Manifest number: 66 Signing time: Fri 25 Apr 2025 06:04:36 +0000 Manifest this update: Fri 25 Apr 2025 06:04:36 +0000 Manifest next update: Fri 02 May 2025 06:04:36 +0000 Files and hashes: 1: 7LSEAFYEaoqTIoTqXx4EagIzHOk.crl (hash: nn3zh8rM8gZptptVi8lS63i5aa9S8KHvS6hxiI3KYf4=) 2: 99AA0D12924111EFB764DA22C4F9AE02.roa (hash: /mhXFSUm8wgJtNfejG+rJ98B0FGC7kHmpO9IfNRXQCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E50, serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Validity Not Before: Apr 25 06:04:36 2025 GMT Not After : May 2 06:04:36 2025 GMT Subject: CN=680b25f4-174a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7c:a7:2e:0e:12:e2:95:22:8a:70:e5:e5:70: 15:ef:6b:9b:f5:09:d5:12:c5:9a:d4:82:af:ef:35: 21:24:0b:b3:4e:67:ea:9d:f7:f4:e5:5d:0e:1b:14: 60:2f:c7:a4:50:5f:df:d3:d7:f4:3a:cc:c5:62:11: ac:0a:9b:14:d4:42:47:f6:8c:b6:36:12:54:c4:19: 13:c6:63:e9:f2:28:a7:39:cc:34:e0:4d:f7:70:1d: dd:74:3d:aa:04:ba:da:4a:20:93:b2:e4:cf:28:fa: a7:20:50:f6:2c:c3:2d:7a:3c:79:42:fe:37:ad:28: 04:e3:ae:85:43:22:ed:b8:53:95:06:7a:b4:d2:78: e2:7b:76:ea:27:08:48:15:10:7d:fd:b1:da:3a:54: 92:db:b8:7f:ca:93:d1:49:98:19:94:a0:f5:07:97: d9:aa:b7:31:65:65:e4:85:53:ec:57:0e:17:30:8b: 8c:12:3e:8a:a4:b2:2e:50:c4:88:28:22:52:fb:e4: b6:dd:a3:b0:e6:c6:a8:57:01:97:e0:24:6e:3e:fa: 73:93:9d:f4:22:5b:6b:28:bc:c5:32:c0:59:c4:55: 33:d7:c7:4f:8c:1e:fc:bc:29:31:15:a8:b7:34:5c: b0:26:74:c1:36:ed:5b:f9:53:74:97:7b:05:3d:f8: 8f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:30:A6:69:A0:11:8E:30:66:F5:7C:2D:D0:52:56:94:FF:68:13:A6 X509v3 Authority Key Identifier: keyid:EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:87:51:b5:4c:31:f4:7b:d9:93:96:eb:76:06:62:98:ca:0a: 26:30:b5:21:c2:8b:6e:3f:25:60:2e:50:96:49:8a:d4:2a:2b: dd:90:d3:b1:07:68:95:bb:51:11:36:70:ca:7f:3f:0d:40:83: 6c:90:12:b3:09:4e:eb:f4:b1:b6:d8:fc:98:d1:70:5e:62:7d: fe:a7:a3:67:7e:b6:a3:c1:cf:50:6a:b7:5d:df:2a:d0:bb:74: 57:3d:9a:d6:01:df:07:cb:c0:af:e5:68:d3:8b:62:62:46:47: 51:8c:3e:ff:f6:c6:d8:e2:72:a2:0b:c5:86:a1:84:08:3d:3b: b7:67:00:d9:bb:99:ad:3b:98:c5:84:0c:d9:95:40:57:62:05: 9f:84:64:d7:8d:d6:fa:a1:7e:53:3c:9f:32:86:63:ea:ad:ad: 24:32:a5:c9:33:86:df:00:2b:97:36:67:c2:ce:a2:4b:ac:59: c1:00:3b:63:da:94:92:c6:f2:39:27:a9:8d:58:64:aa:25:be: fd:af:24:56:8a:a6:54:57:08:48:2b:50:2f:d7:33:35:9d:60: 61:3d:0b:79:b5:5c:3a:e8:be:2d:bc:db:fa:01:fe:06:ce:88: 67:b9:2f:9c:52:bd:1d:83:2c:2d:02:6a:17:83:60:f6:a9:e2: 08:22:b4:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OUU1MDExMC8GA1UEBRMoRUNCNDg0MDA1NjA0NkE4QTkzMjI4NEVBNUYxRTA0NkEw MjMzMUNFOTAeFw0yNTA0MjUwNjA0MzZaFw0yNTA1MDIwNjA0MzZaMBgxFjAUBgNV BAMTDTY4MGIyNWY0LTE3NGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCfKcuDhLilSKKcOXlcBXva5v1CdUSxZrUgq/vNSEkC7NOZ+qd9/TlXQ4bFGAv x6RQX9/T1/Q6zMViEawKmxTUQkf2jLY2ElTEGRPGY+nyKKc5zDTgTfdwHd10PaoE utpKIJOy5M8o+qcgUPYswy16PHlC/jetKATjroVDIu24U5UGerTSeOJ7duonCEgV EH39sdo6VJLbuH/Kk9FJmBmUoPUHl9mqtzFlZeSFU+xXDhcwi4wSPoqksi5QxIgo IlL75Lbdo7DmxqhXAZfgJG4++nOTnfQiW2sovMUywFnEVTPXx0+MHvy8KTEVqLc0 XLAmdME27Vv5U3SXewU9+I9VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUljCmaaAR jjBm9Xwt0FJWlP9oE6YwHwYDVR0jBBgwFoAU7LSEAFYEaoqTIoTqXx4EagIzHOkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5RTUwLzJERDc2MzhDOTI0 MTExRUZBNTZDQ0UyMUM0RjlBRTAyLzdMU0VBRllFYW9xVElvVHFYeDRFYWdJekhP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0xTRUFGWUVhb3FUSW9UcVh4NEVhZ0l6SE9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 RTUwLzJERDc2MzhDOTI0MTExRUZBNTZDQ0UyMUM0RjlBRTAyLzdMU0VBRllFYW9x VElvVHFYeDRFYWdJekhPay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABKHUbVMMfR72ZOW63YGYpjKCiYwtSHCi24/JWAuUJZJitQqK92Q07EH aJW7URE2cMp/Pw1Ag2yQErMJTuv0sbbY/JjRcF5iff6no2d+tqPBz1Bqt13fKtC7 dFc9mtYB3wfLwK/laNOLYmJGR1GMPv/2xtjicqILxYahhAg9O7dnANm7ma07mMWE DNmVQFdiBZ+EZNeN1vqhflM8nzKGY+qtrSQypckzht8AK5c2Z8LOokusWcEAO2Pa lJLG8jknqY1YZKolvv2vJFaKplRXCEgrUC/XMzWdYGE9C3m1XDrovi282/oB/gbO iGe5L5xSvR2DLC0CaheDYPap4ggitB0= -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:51 2025 by rpki-client